Friday, April 16, 2021

WordPress Releases Security and Maintenance Update

Original release date: April 16, 2021

WordPress versions 4.7-5.7 are affected by multiple vulnerabilities. An attacker could exploit one of these vulnerabilities to take control of an affected website. 

CISA encourages users and administrators to review the WordPress Security and Maintenance Release and upgrade to WordPress 5.7.1.

This product is provided subject to this Notification and this Privacy & Use policy.

Posted at https://sl.advdat.com/3ttCeik

Create a green microapp and help plant the Citrix forest

Microapps integrate a wide range of systems into end users’ daily workflows — administrators can leverage templates to quickly integrate Citrix Workspace with enterprise systems such as Salesforce, Workday and ServiceNow, while developers can create custom integrations to interface with …

The post Create a green microapp and help plant the Citrix forest first appeared on Citrix Blogs.

  

Related Stories

Posted at https://sl.advdat.com/3e9lQNv

Thursday, April 15, 2021

CISA and CNMF Analysis of SolarWinds-related Malware

Original release date: April 15, 2021

CISA and the Department of Defense (DoD) Cyber National Mission Force (CNMF) have analyzed additional SolarWinds-related malware variants—referred to as SUNSHUTTLE and SOLARFLARE. One of the analyzed files was identified as a China Chopper webshell server-side component that was observed on a network with an active SUNSHUTTLE infection. The webshell can provide a cyber threat actor an alternative method of accessing a network, even if the SUNSHUTTLE infection was remediated.

The U.S. Government attributes this activity to the Russian Foreign Intelligence Service (SVR).

CISA encourages users and administrators to review Malware Analysis Report MAR-10327841-1.v1, U.S. Cyber Command’s VirusTotal page, and the following resources for more information: 

This product is provided subject to this Notification and this Privacy & Use policy.

Posted at https://sl.advdat.com/3tsxEkI

Red Bull Racing Honda: Transformed and improved

For the sport of Formula 1, Red Bull Racing Honda, and all their technical partners, 2020 was a year unlike any other. It was filled with uncertainty, disruption, ever-changing timelines, and a complete shift from a traditional working model …

The post Red Bull Racing Honda: Transformed and improved first appeared on Citrix Blogs.

  

Related Stories

Posted at https://sl.advdat.com/3abuIRy

NSA-CISA-FBI Joint Advisory on Russian SVR Targeting U.S. and Allied Networks

Original release date: April 15, 2021

CISA, the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) on Russian Foreign Intelligence Service (SVR) actors scanning for and exploiting vulnerable systems to compromise U.S. and allied networks, including national security and government-related systems.

Specifically, SVR actors are targeting and exploiting the following vulnerabilities:

Additionally the White House has released a statement formally attributing this activity and the SolarWinds supply chain compromise to SVR actors. CISA has updated the following products to reflect this attribution:

CISA strongly encourages users and administrators to review Joint CSA: Russian SVR Targets U.S. and Allied Networks for SVR tactics, techniques, and procedures, as well as mitigation strategies.

 

This product is provided subject to this Notification and this Privacy & Use policy.

Posted at https://sl.advdat.com/3sfNHRi